Platform: Code4rena
Start Date: 13/12/2022
Pot Size: $36,500 USDC
Total HM: 5
Participants: 77
Period: 3 days
Judge: gzeon
Total Solo HM: 1
Id: 191
League: ETH
Rank: 77/77
Findings: 1
Award: $19.22
🌟 Selected for report: 0
🚀 Solo Findings: 0
🌟 Selected for report: Soosh
Also found by: 9svR6w, Apocalypto, Ch_301, HE1M, Koolex, SmartSek, Titi, Trust, Zarf, bin2chen, btk, carrotsmuggler, csanuragjain, dic0de, dipp, gz627, hansfriese, hihen, imare, immeas, indijanc, jadezti, kuldeep, ladboy233, maks, neumo, obront, rvierdiiev, sces60107, sk8erboy
19.2206 USDC - $19.22
If the admin calls redraw(), it is possible that the randomness will be delivered after the recovery timelock unlocks. Therefore, the winner may not have enough time to claim the NFT, or the randomness can be delivered already after the NFT has been recovered.
None needed
Manual review
Ensure that the recovery timelock takes into account the latest draw and allow the waiting period to elapse before the NFT can be recovered. Similarly, ensure that if the contract is waiting for fulfilling randomness, the NFT cannot be recovered in between.
#0 - c4-judge
2022-12-17T16:30:54Z
gzeon-c4 marked the issue as duplicate of #146
#1 - c4-judge
2023-01-23T16:53:18Z
gzeon-c4 marked the issue as satisfactory
#2 - c4-judge
2023-01-23T17:09:41Z
gzeon-c4 changed the severity to 3 (High Risk)